added regex to user requests

Joren-Thijs · Joren-Thijs · commit 34761d8ee648 · 2020-05-05T02:39:43.000+02:00
diff --git a/app/Http/Requests/StoreUserRequest.php b/app/Http/Requests/StoreUserRequest.php
@@ -6,6 +6,16 @@
 
 class StoreUserRequest extends FormRequest
 {
+    /**
+     * Sanitize before rules()
+     */
+    protected function sanitizeInput()
+    {
+        $input = $this->all();
+        $input['name'] = preg_replace("~[\p{M}]~uis", "", $this->input('name'));
+        $this->replace($input);
+    }
+
     /**
      * Get the validation rules that apply to the request.
      *
@@ -17,7 +27,7 @@ public function rules()
             'name' => 'required|string|min:1|max:150',
             'email' => 'required|email:rfc,dns',
             'password' => 'required|string|min:8|max:128',
-            'role' => 'required|string|min:1|max:150',
+            'role' => 'required|string|min:1|max:150|regex:/^[a-zA-Z]+$/', // Regex for ASCII letters
         ];
     }
 
@@ -28,6 +38,8 @@ public function rules()
      */
     protected function getValidatorInstance()
     {
+        $this->sanitizeInput();
+
         return parent::getValidatorInstance()->after(function () {
             // Check if password and confirm password match
             if ($this->input('password') != $this->input('confirm_password')) {
diff --git a/app/Http/Requests/UpdateUserRequest.php b/app/Http/Requests/UpdateUserRequest.php
@@ -6,6 +6,16 @@
 
 class UpdateUserRequest extends FormRequest
 {
+    /**
+     * Sanitize before rules()
+     */
+    protected function sanitizeInput()
+    {
+        $input = $this->all();
+        $input['name'] = preg_replace("~[\p{M}]~uis", "", $this->input('name'));
+        $this->replace($input);
+    }
+
     /**
      * Get the validation rules that apply to the request.
      *
@@ -17,7 +27,17 @@ public function rules()
             'name' => 'required|string|min:1|max:150',
             'email' => 'email:rfc,dns',
             'password' => 'string|min:8|max:128',
-            'role' => 'string|min:1|max:150',
+            'role' => 'string|min:1|max:150|regex:/^[a-zA-Z]+$/', // Regex for ASCII letters
         ];
     }
+
+    /**
+     * Validate request
+     *
+     * @return Illuminate\Foundation\Http\FormRequest::getValidatorInstance
+     */
+    protected function getValidatorInstance()
+    {
+        $this->sanitizeInput();
+    }
 }
